REPORTS
PROGRAMS
PUBLISHERS
Top10 publishers:
bobrov
117
geeknik
79
linkks
75
sp1d3rs
68
jobert
67
someonenobbd
60
jon_bottarini
49
haxta4ok00
48
netfuzzer
48
ryat
47
Now on Twitter
the unofficial
HackerOne
disclosure timeline.
X
Automattic
disclosed a bug submitted by
apapedulimu
Archived / Deleted / Private Poll Can Be Viewed by Another Users [Crowdsignal WordPress plugins]
03 Nov 2022
Internet Bug Bounty
disclosed a bug submitted by
kurohiro
CVE-2022-42916: HSTS bypass via IDN
03 Nov 2022
Automattic
disclosed a bug submitted by
bugra
Stored XSS in intensedebate.com via the Comments RSS
02 Nov 2022
Automattic
disclosed a bug submitted by
bugra
IDOR in API applications (able to see any API token, leads to account takeover)
01 Nov 2022
Krisp
disclosed a bug submitted by
n0_m3rcy
Authentication bypass for leads to take over any users account.
31 Oct 2022
Linktree
disclosed a bug submitted by
sudi
XSS in SocialIcon Link
31 Oct 2022
MTN Group
disclosed a bug submitted by
lu3ky-13
Cross-Site Request Forgery (CSRF) to xss
30 Oct 2022
MTN Group
disclosed a bug submitted by
lu3ky-13
Cross-site Scripting (XSS) - Reflected
30 Oct 2022
Lark Technologies
disclosed a bug submitted by
snapsec
Accessing/Editing Folders of Other Users in the Orginisation.
29 Oct 2022
Lark Technologies
disclosed a bug submitted by
snapsec
Privilege Escalation to All-staff group
28 Oct 2022
Adobe
disclosed a bug submitted by
dreamer_eh
HTML INJECTION FOUND ON https://adobedocs.github.io/analytics-1.4-apis/swagger-docs.html DUE TO OUTDATED SWAGGER UI
28 Oct 2022
Mars
disclosed a bug submitted by
ramzanrl
Jolokia Reflected XSS
27 Oct 2022
curl
disclosed a bug submitted by
kurohiro
CVE-2022-42916: HSTS bypass via IDN
27 Oct 2022
curl
disclosed a bug submitted by
kurohiro
CVE-2022-35260: .netrc parser out-of-bounds access
27 Oct 2022
Gymshark
disclosed a bug submitted by
a-p0c
Subdomain takeover on 'de-headless.staging.gymshark.com'
27 Oct 2022
Node.js
disclosed a bug submitted by
bnoordhuis
Weak randomness in WebCrypto keygen
26 Oct 2022
Node.js
disclosed a bug submitted by
vvx7
HTTP Request Smuggling Due to Incorrect Parsing of Header Fields
26 Oct 2022
Node.js
disclosed a bug submitted by
mhdawson
Node 18 reads openssl.cnf from /home/iojs/build/... upon startup on MacOS
26 Oct 2022
Node.js
disclosed a bug submitted by
haxatron1
CVE-2022-32213 bypass via obs-fold mechanic
26 Oct 2022
Node.js
disclosed a bug submitted by
shacharm
HTTP Request Smuggling Due to Incorrect Parsing of Multi-line Transfer-Encoding (improper fix for CVE-2022-32215)
26 Oct 2022
1
...
3
4
5
6
7
...
637
BY DENIS WERNER - @NOBBD -
IMPRESSUM
